Suricata (software)
 | |
| Developer(s) | Open Information Security Foundation |
|---|---|
| Stable release | |
| Repository | |
| Written in | C, Rust |
| Operating system | FreeBSD, Linux, UNIX, Mac OS X, Microsoft Windows |
| Type | |
| License | GNU General Public License[3] |
| Website | suricata |
Suricata is an open-source based intrusion detection system (IDS) and intrusion prevention system (IPS). It was developed by the Open Information Security Foundation (OISF). A beta version was released in December 2009, with the first standard release following in July 2010.[4][5][6]
Features
[edit]Like other IDSes, Suricata provides threat detection capabilities. Like a firewall, Suricata provides traffic filtering and monitoring, but Suricata provides network administrators with the ability to write and enforce detection rules.[5]
Suricata is able to detect common attack vectors such as port scanning, denial-of-service, pass-the-hash, and brute-force attacks.[5]
Typically, a major update of Suricata is released every 3 months.[5]
Ruleset
[edit]Suricata uses a ruleset to perform detection and threat analysis.[5]
See also
[edit]
References
[edit]- ^ "Release 7.0.10". 25 March 2025. Retrieved 31 March 2025.
- ^ "Releases - OISF/suricata" – via GitHub.
- ^ "Suricata license".
- ^ "New Open Source Intrusion Detector Suricata Released". Slashdot. 2009-12-31. Retrieved 2011-11-08.
- ^ a b c d e Rice-Jones, Joe (March 26, 2025). "5 reasons to use Suricata or Snort for your home lab firewall". XDA Developers.
- ^ "Suricata Downloads". Open Security Information Foundation. Retrieved 2011-11-08.